In the case of macOS, this is supported from macOS 10.12.1 which was released in October 2016. Now that the DST Root CA X3 root certificate has expired, clients that do not trust ISRG Root X1, now the only valid root for Let's Encrypt, will not be able to verify a Let's Encrypt SSL certificate is valid.įor most people this is not a problem, as the supported platforms list is fairly extensive and covers most modern platforms that end users will be using. This root certificate was important as it allowed older clients to trust, relatively, new Let's Encrypt certificates which were also signed with their own root certificate (ISRG Root X1). ![]() On 30 September, the DST Root CA X3 certificate, which Let's Encrypt were using to "cross-sign", expired.
0 Comments
Leave a Reply. |